[Snyk] Security upgrade org.jbehave:jbehave-core from 3.8 to 5.0

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • pom.xml

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Upgrade	Breaking Change	Exploit Maturity
	611/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.8	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088328	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088329	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088330	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	776/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 9.1	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088331	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	626/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.1	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088332	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088333	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	626/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.1	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088334	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088335	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	626/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.1	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088336	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	696/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.5	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088337	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	586/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 5.3	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1088338	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	631/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.2	Deserialization of Untrusted Data SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1294540	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569176	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569177	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569178	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569179	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569180	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569181	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569182	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Remote Code Execution (RCE) SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569183	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569185	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569186	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Arbitrary Code Execution SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569187	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	646/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 6.5	Denial of Service (DoS) SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569189	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Server-Side Request Forgery (SSRF) SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569190	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	746/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 8.5	Server-Side Request Forgery (SSRF) SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-1569191	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	Proof of Concept
	589/1000 Why? Has a fix available, CVSS 7.5	Denial of Service (DoS) SNYK-JAVA-COMTHOUGHTWORKSXSTREAM-2388977	org.jbehave:jbehave-core: 3.8 -> 5.0	Yes	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Deserialization of Untrusted Data
🦉 Deserialization of Untrusted Data
🦉 Deserialization of Untrusted Data
🦉 More lessons are available in Snyk Learn